Main Vulnerability Database SB20251226249

SB20251226249 - Improper locking in Linux kernel gpu host1x driver

Published: December 26, 2025

Security Bulletin ID SB20251226249

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Improper locking (CVE-ID: CVE-2025-68732)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the syncpt_release() and host1x_syncpt_put() functions in drivers/gpu/host1x/syncpt.c. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

https://git.kernel.org/stable/c/4e6e07ce0197aecfb6c4a62862acc93b3efedeb7
https://git.kernel.org/stable/c/79197c6007f2afbfd7bcf5b9b80ccabf8483d774
https://git.kernel.org/stable/c/c7d393267c497502fa737607f435f05dfe6e3d9b
https://git.kernel.org/stable/c/d138f73ffb0c57ded473c577719e6e551b7b1f27